The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

mod_evasive vs ddos deflate vs port flood (csf)

Discussion in 'Security' started by nobodyk, May 12, 2011.

  1. nobodyk

    nobodyk Well-Known Member

    Joined:
    Aug 1, 2010
    Messages:
    90
    Likes Received:
    0
    Trophy Points:
    6
    I have a question, which one is best? mod_evasive vs ddos deflate vs port flood (csf)
     
  2. cPanelTristan

    cPanelTristan Quality Assurance Analyst
    Staff Member

    Joined:
    Oct 2, 2010
    Messages:
    7,623
    Likes Received:
    21
    Trophy Points:
    38
    Location:
    somewhere over the rainbow
    cPanel Access Level:
    Root Administrator
    mod_evasive will only work for Apache connections. If the connections are not Apache-based but attacking some other service, then mod_evasive will be useless for you against that type of attack.

    ddos-deflate and port flood are not based on Apache traffic but general traffic to the machine. They both work at the iptables level. I have not used port flood before, so I cannot state if it is better than ddos-deflate

    I would want to mention that ddos-deflate is based on number of connections within a set time (1 minute is the default setting). I have not used the port flood script to know how it functions specifically, but it is likely similar to that.
     
Loading...

Share This Page